IRIS Institutional Research Information System - AIR Archivio Istituzionale della Ricerca

The availability of a multitude of data sources has naturally increased the need for subjects to collaborate for supporting distributed computations that combine different data collections for their elaboration and analysis. Due to the quick pace at which datasets grow, often the authorities collecting and owning such datasets resort to external third parties (e.g., cloud providers) for their storage and management. Data un- der the control of different authorities are autonomously encrypted (using different encryption schemes and keys) for their external storage. This makes distributed computations combining these sources dif- ficult to support. In this paper, we propose an approach enabling collaborative computations over data encrypted in storage, selectively involving also subjects that might not be authorized for accessing the data in plaintext when their collaboration is considered economically convenient. We also consider the possible adoption of trusted hardware components, to enable the evaluation of operations over plain- text data at non-fully trusted computational providers. The experimental results confirm the economic benefits that can be enabled by our proposal.

Distributed query execution under access restrictions / S. De Capitani di Vimercati, S. Foresti, S. Jajodia, G. Livraga, S. Paraboschi, P. Samarati. - In: COMPUTERS & SECURITY. - ISSN 0167-4048. - 127:(2023 Apr), pp. 103056.1-103056.18. [10.1016/j.cose.2022.103056]

Distributed query execution under access restrictions

S. De Capitani di Vimercati
Primo
;S. Foresti
Secondo
;G. Livraga;P. Samarati
Ultimo
2023

Abstract

The availability of a multitude of data sources has naturally increased the need for subjects to collaborate for supporting distributed computations that combine different data collections for their elaboration and analysis. Due to the quick pace at which datasets grow, often the authorities collecting and owning such datasets resort to external third parties (e.g., cloud providers) for their storage and management. Data un- der the control of different authorities are autonomously encrypted (using different encryption schemes and keys) for their external storage. This makes distributed computations combining these sources dif- ficult to support. In this paper, we propose an approach enabling collaborative computations over data encrypted in storage, selectively involving also subjects that might not be authorized for accessing the data in plaintext when their collaboration is considered economically convenient. We also consider the possible adoption of trusted hardware components, to enable the evaluation of operations over plain- text data at non-fully trusted computational providers. The experimental results confirm the economic benefits that can be enabled by our proposal.
English
Authorization model; Cloud computing; Controlled data sharing; Distributed query execution; Relation profile
Settore INF/01 - Informatica
Articolo
Esperti anonimi
Pubblicazione scientifica
   Machine Learning-based, Networking and Computing Infrastructure Resource Management of 5G and beyond Intelligent Networks (MARSAL)
   MARSAL
   EUROPEAN COMMISSION
   H2020
   101017171

   Green responsibLe privACy preservIng dAta operaTIONs
   GLACIATION
   EUROPEAN COMMISSION

   High quality Open data Publishing and Enrichment (HOPE)
   HOPE
   MINISTERO DELL'ISTRUZIONE E DEL MERITO
   2017MMJJRE_003

   SEcurity and RIghts in the CyberSpace (SERICS)
   SERICS
   MINISTERO DELL'UNIVERSITA' E DELLA RICERCA
   codice identificativo PE00000014
apr-2023
14-dic-2022
COMPUTERS & SECURITY
Elsevier
127
103056
1
18
18
Pubblicato
Periodico con rilevanza internazionale
https://www.sciencedirect.com/science/article/pii/S0167404822004485
manual
WOS:000943508300001
2-s2.0-85148323762
Aderisco
info:eu-repo/semantics/article
Distributed query execution under access restrictions / S. De Capitani di Vimercati, S. Foresti, S. Jajodia, G. Livraga, S. Paraboschi, P. Samarati. - In: COMPUTERS & SECURITY. - ISSN 0167-4048. - 127:(2023 Apr), pp. 103056.1-103056.18. [10.1016/j.cose.2022.103056]
open
Prodotti della ricerca::01 - Articolo su periodico
6
262
Article (author)
Periodico con Impact Factor
S. De Capitani di Vimercati, S. Foresti, S. Jajodia, G. Livraga, S. Paraboschi, P. Samarati
01 - Articolo su periodico
File in questo prodotto:
File Dimensione Formato  
COSE-D-22-00532R1.pdf

accesso aperto

Tipologia: Pre-print (manoscritto inviato all'editore)
Dimensione 504.61 kB
Formato Adobe PDF
Visualizza/Apri
504.61 kB Adobe PDF Visualizza/Apri
1-s2.0-S0167404822004485-main.pdf

accesso aperto

Descrizione: Article
Tipologia: Publisher's version/PDF
Dimensione 2.89 MB
Formato Adobe PDF
Visualizza/Apri
2.89 MB Adobe PDF Visualizza/Apri
Pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/2434/969413
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 1
  • ???jsp.display-item.citation.isi??? 0
social impact